CN107222353A - The unrelated software defined network virtual management platform of supported protocol - Google Patents
The unrelated software defined network virtual management platform of supported protocol Download PDFInfo
- Publication number
- CN107222353A CN107222353A CN201710562210.3A CN201710562210A CN107222353A CN 107222353 A CN107222353 A CN 107222353A CN 201710562210 A CN201710562210 A CN 201710562210A CN 107222353 A CN107222353 A CN 107222353A
- Authority
- CN
- China
- Prior art keywords
- virtual
- network
- message
- flow table
- physical
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/145—Network analysis or design involving simulating, designing, planning or modelling of a network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0823—Configuration setting characterised by the purposes of a change of settings, e.g. optimising configuration for enhancing reliability
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/12—Discovery or management of network topologies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
- H04L43/0805—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
- H04L43/0817—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking functioning
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Environmental & Geological Engineering (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses the software defined network virtual management platform that a kind of supported protocol is unrelated, the platform supports different tenants to create and manage multiple virtual networks on same physical resource, each virtual network can flexible self-defined topology, and each virtual network can use custom protocol according to demand, so as to give full play to SDN programmability;Meanwhile, isolate flow by adding tagged mode between virtual network;In addition, by introducing branch's flow table and virtual network flow table, planning flow table so that packet handling rate is greatly improved.
Description
Technical field
The present invention relates to the virtual management technical field of software defined network, more particularly to a kind of supported protocol are unrelated
Software defined network virtual management platform.
Background technology
Network virtualization (networkvirtualization) refers to create on a shared physical network resource
Multiple virtual networks, and concurrently and independently can dispose and manage multiple virtual networks.Wherein, each virtual network can be certainly
Virtual networks topology simultaneously runs custom protocol.By using network virtualization, the profit of bottom physical resource can be improved
With rate.In addition, the introducing of network virtualization make it possible network structure mobilism and diversification, it is considered to be solve existing
There is network to ossify problem, build the best scheme of Next Generation Internet.
Because network virtualization has the advantages that numerous and application scenarios extensively, therefore grinding for network virtualization technology
Study carefully more and more.There are two kinds of thinkings currently for the research of network virtualization, one kind is realized based on current network framework.Example
Such as:Virtual Local Area Network (VLAN), VPN (VPN), active PN (APN), overlay network (Overlay
Network).Another be using such as software defined network (SoftwareDefinedNetworking, hereinafter referred to as
SDN) this kind of new network architecture.
SDN is a kind of new network architecture, by central controlled mode, the control plane in network is flat with forwarding
Face is separated.Wherein, control plane is made up of controller, is responsible for centralization management and control;Forwarding plane is made up of related forwarding unit,
It is responsible for the forwarding of data.SDN not only solves problems present in current network framework, for example:Device configuration it is cumbersome and
Iteration is slow.And Network Programmable is also achieved, help to realize the Optimum utilization of resource, lift network management and control efficiency.
Based on the excellent architectures of SDN, realize that network virtualization is more and more paid attention to using SDN deployment.Pass
The network virtualization deployment of system needs manual hop-by-hop configuration, and inefficiency, human cost is very high.SDN passes through central controlled side
Formula, network manager, so as to realize the service deployment of automation, can greatly shorten by the API of controller come the program of writing
The service deployment cycle.The model of two separate allows SDN to realize the network virtualizations of three kinds of different levels.One kind is forwarding
Planar virtual, i.e., each interchanger possesses virtualization capability in itself.One kind is real between control plane and Forwarding plane
Now virtualize, i.e., realized and virtualized by Message Agent.Another is control plane virtualization, that is, realizes the void of SDN controllers
Planization.
At present, SDN most well-known southbound interfaces are the OpenFlow agreements that ONF is proposed.OpenFlow causes original complete
The data forwarding process controlled by interchanger, router is converted into jointly complete by OpenFlow interchangers and OpenFlow controllers
Into it is achieved thereby that the separation of data forwarding and route test.Controller can be controlled by the interface operation provided in advance
Flow table in OpenFlow interchangers, so as to reach the purpose of control data forwarding.
Flowvisor is first SDN virtual management platform based on OpenFlow agreements.It can be by bottom
Physical resource abstract for multiple virtual networks share.The division scope of virtual network covers physical layer, data link
Internet resources are carried out reasonable distribution according to the thought of stream, make different virtual nets by the protocol fields of layer, Internet and transport layer
Network has different fluid spaces, so that flow is isolated between each virtual network.
However, there is some problem in Flowvisor:
1) can not processing stream space overlap situation.The fluid space that Flowvisor is generated according to subscriber policy divides virtual
Network, is actually that a complete protocol header field space is allocated into different users, due to each virtual network
Fluid space is defined by user oneself, thus be there is potential possibility and make it that the fluid space of different virtual networks is overlapping, to this
Flowvisor can not be dealt carefully with.
2) Flowvisor does not have the concept of virtual unit.Because same physical equipment may be total to by multiple virtual networks
With when one of virtual network changes the association attributes of the equipment, other virtual networks, which may be produced, influences.
3) virtual topology is not supported.Flowvisor, also without the concept of virtual port and virtual link, is to physics
Port is simply divided.Therefore, the topology of virtual network must be the subgraph of physical network topology.
4) address virtual is not supported.All virtual networks share address space, and each virtual network can not possess
One complete independent address space.
The problem of existing for Flowvisor, original team proposes a kind of new network virtualization management platform
OpenVirtex (hereinafter referred to as OVX).Similar to Flowvisor, OVX is also at OpenFlow interchangers and controlled with OpenFlow
Between device, agency between the two is used as.Difference between the two is that the processing granularity to data packet head is different,
Flowvisor can be divided different main frames according to the information of fluid space, and different virtual networks are constituted with this.And OVX
Then a sufficient address space, i.e. address virtual are provided for each virtual network.In addition, OVX also allows tenant self-defined
Independently of the virtual network topology of physical network topology.
Even if the problem of OVX compensate for Flowvisor presence, but it still faces problems with:
1) OVX distinguishes virtual network flow by rewriting MAC and IP fields.If tenant is forwarded according to MAC, i.e., under
MAC is mismatched in the flow table item of hair, OVX can not be handled.
2) flow table item is exploded.The MAC Address of main frame is to discriminate between in the key of virtual network, revised MAC Address in OVX
Comprising FlowID, and each FlowID corresponds to the address pair that a source MAC and a purpose MAC are constituted.Therefore, when virtual
The number of host of network connection increases, in order that can be communicated between any main frame, the number of flow table item will be big in interchanger
Amplitude increase.
3) matching efficiency is low.OVX is realized based on OpenFlow1.0, using single table structure, all virtual network
Flow table item is all concentrated in a table, and along with the flow table item of each virtual network has explosion issues, therefore, matching efficiency is low
Under.
, although OpenFlow realizes the thought of SDN PNs, but itself has the following problems on the other hand:
1) expansion and the development of network technology itself with software defined network application scenarios, OpenFlow need to support more and more
Agreement and data processing method, passive evolution causes matching field more and more too fat to move.2) existing protocol is only supported, it is difficult to support
New agreement, if to realize the service based on new agreement, it is necessary to which equipment vendors' modification equipment causes service department to support new agreement
Affix one's name to excessive cycle.Even if 3) for conventional standard agreement, such as Transmission Control Protocol, OpenFlow can not be to the arbitrarily-shaped domain on its head
Matched and handled.Therefore, OpenFlow itself is just contained based on the OpenFlow SDN virtual platforms realized
Intrinsic defect.
For OpenFlow problem encountered, Huawei proposes agreement unaware forwarding (Protocol-Oblivious-
Forwarding, hereinafter referred to as POF).POF is the enhancing to current SDN Forwarding plane.The forwarding unit of bottom to agreement with
And processing forward flow is not perceived, forwarding strategy is responsible for by controller completely, has thoroughly decoupled control plane and Forwarding plane.
Therefore, POF enables forwarding unit to support arbitrary agreement and constituted without the hardware configuration or code for changing them, from
And help the new service of user's rapid deployment and strategy.
However, there is presently no by the more perfect SDN virtual management platform based on POF;Must in consideration of it, having
This is furtherd investigate.
The content of the invention
, can be abundant it is an object of the invention to provide the software defined network virtual management platform that a kind of supported protocol is unrelated
SDN programmability is played, packet handling rate is increased substantially, while the utilization rate to bottom physical resource is high.
The purpose of the present invention is achieved through the following technical solutions:
A kind of unrelated software defined network virtual management platform of supported protocol, including:Physical network management module,
API module, virtual network management module, global map module and Message Agent module;Wherein:
Physical network management module, is responsible for the physical network resource of whole platform, in the physical switches with bottom
After completing basic handshake procedure, it is that the physical switches of each bottom safeguard an entity object in platform, often
One entity object is responsible for safeguarding the TCP connections between the respective physical interchanger of bottom;
API module, for providing the complete virtual network topology of establishment and monitoring virtual network configuration and status information
API;
Virtual network management module, for realizing the establishment of virtual network according to calling for API module, configuring and initial
Change, after virtual network initialization, be responsible for completing virtual switch and the basic handshake procedure of controller, and build therebetween
Vertical TCP connections;
Global map module, for storage virtualization switch and the map information of physical switches, virtual port and physics
The map information of port, and virtual link and physical link map information;
Message Agent module, for intercepting the message between controller and physical switches, with reference to global map module
Information is rewritten to message.
The physical network management module and physical switches handshake procedure are as follows:
First, the corresponding agreement of both sides is checked by Hello message between physical switches and physical network management module
Whether version is identical;
Then, physical network management module issues Feature_request message to ask physics to be handed over to physical switches
The essential information changed planes, including device numbering, port number, the state of flow table number and respective resources;Physical switches are led to
Cross the request that Feature_reply message responds physical network management module;
Physical network management module is obtained after the essential information of physical switches, is obtained by sending Set_config message
Take the specifying information of respective resources;Physical switches are received after the request of physical network management module, send corresponding message
Respond physical network management module;
After the information of complete physical switches is obtained, pass through between physical network management module and physical switches
Echo message is sent to keep in touch.
Comprising a Topology Discovery component in each entity object, to send LLDPDU into network or handle from network
In the LLDPDU that receives;
The port of physical switches is divided into two types, and one kind is quick port, that is, is properly received LLDPDU port;Separately
One kind is port at a slow speed, that is, have sent the port of the maximum number of LLDPDU and not confirmed;
When physical switches receive LLDPDU, physical network management module, thing are given by PacketIn information reportings
Reason network management module calls the Topology Discovery component in the corresponding entity object of respective physical interchanger to handle LLDPDU;According to
The relevant information recorded in the information and LLDPDU that are recorded in PacketIn message, realizes Topology Discovery.
Two kinds of API defined in the API module:Cut into slices API and monitoring API;Wherein, section API is used to create
Virtual network is built and configures, monitoring API is used to obtain virtual network configuration and status information.
The virtual network management module, for realizing the establishment of virtual network according to calling for API module, configuring and first
Beginningization, is specifically included:
After the request to create that tenant issues is received, calling through API module creates corresponding virtual network;
In the configuration process of virtual network, virtual network management module is that each virtual component in virtual network is created
Virtual component entity simultaneously maps that to the physical assemblies of bottom physically, and mapping relations are stored in global map module;Institute
The virtual component stated includes:Virtual switch, virtual port and virtual link;
In the initialization procedure of virtual network, virtual network management module allows virtual component to reach active state successively,
So as to start virtual network.
The Topology Discovery of virtual network management module is responsible for presenting the topology of virtual network;For each virtual network,
Simulate LLDPDU broadcast and the process received in network.
The flowchart scheme of flow isolation and the overall situation between virtual network is realized by Message Agent module;Specifically such as
Under:
Flow isolation between virtual network:By Message Agent module corresponding data packet header add virtual label come
Virtual network belonging to identification data packet, so as to realize the flow isolation between different virtual networks;The top N of virtual label is
One POFVisorTag, for distinguishing other network traffics;Middle N positions are TenantID, and its effect is the void belonging to mark
Intend network;Last N positions are LinkID, the virtual link where the transmission of its identification data packet;
Global flowchart scheme:By the way that the entrance flow table of processing data packets is set to branch's flow table, and then it will belong to
The packet of different virtual networks is imported in corresponding virtual network flow table and handled;Branch's flow table is made up of two parts, a part
For border flow table item, the main frame flow for recognizing respective virtual network, because main frame is recognized by MAC Address, therefore border
Flow table item matches the entry port of source MAC and packet;Another part is virtual flow table item, for distinguishing in virtual network
Flow, the entry port of virtual label and packet in the list item matched data bag;When packet enters physical switches
Afterwards, the border flow table item first in matching branch flow table, if illustrating that the packet is come from virtual network in matching
Main frame, is jumped in respective virtual network flow table after matching by instruction;If in not matching, matching the void in branch's flow table
Intend flow table item, if in matching, the packet belongs to some virtual network, the virtual label of data packet header is removed, so
After jump to and handled in respective virtual network flow table.
The mode that the Message Agent module is rewritten to message is as follows:
TableMod message, for generating flow table;Modification mode is as follows:It is that TableMod divides again according to TableType
It is stored in new TableID, and by corresponding relation in global map module;In addition, when including in TableMod message
When TableType is OF_MM_TABLE, platform is the flow table item for the PacketIn that the table issues an acquiescence;
FlowMod message, for generating flow table item;Modification mode is as follows:According to the information in global map module, offset
The TableID included in breath and CounterID is rewritten, in addition it is also necessary to instruction to being included in FlowMod message and dynamic
Changed accordingly;
The effect of PortMod message is whether setting openflowenable field order virtual network switch port opens
Begin according to POF mode treatment packets;The PortMod message issued for controller, is rewritten into the table in branch's flow table
:Then it is boundary current by PortMod message transformations if boundary port according to the type of the corresponding port of PortMod message
List item, the MAC Address of border flow table item matching main frame and the port numbers of corresponding physical port, are then referred to by GotoTable
Order is jumped in correspondence virtual network flow table;It is virtual by PortMod message transformations if the type of port is link port
The port numbers of flow table item, virtual flow table item matching virtual label and correspondence physical port, then remove the virtual of data packet header
Label, and jumped to by GotoTable instructions in correspondence virtual network flow table;
PacketIn message is the flow table item in packet is not matched, or the PacketIn included in execution flow table item is moved
When making, physical switches be sent to controller be used for report one need controller processing packet information;For
The rewriting of PacketIn message needs to distinguish different scenes:When PacketIn message comes from branch's flow table, then platform to point
Flow table item is issued in Zhi Liubiao.Wherein, during the occurrence of flow table item is the entry port of source MAC and packet, flow table item
Act as Drop;When PacketIn message carrys out virtual network flow table, then being needed when reporting PacketIn message will be corresponding
Physical port is rewritten into virtual port;
The effect of PacketOut message, which is that controller control physical switches are corresponding to packet execution, to be acted and forwards
Packet, corresponding action is stored in actionlist;The rewriting of PacketOut message is needed in modification actionlist
Everything, by calling the rewriting operation of respective action to complete;
Also include:Log pattern, for the data during recording platform operation, and the printing day related to platform operations
Will information.
As seen from the above technical solution provided by the invention, the platform supports different tenants on same physical resource
Create and manage multiple virtual networks, each virtual network can flexible self-defined topology, and each virtual network can be with
Custom protocol is used according to demand, so as to give full play to SDN programmability;Meanwhile, pass through addition between virtual network
The mode of label isolates flow;By introducing branch's flow table and virtual network flow table, flow table is planned so that at packet
Reason speed is greatly improved.In addition, POFVisor introducing will not be impacted to original performance, to the utilization rate of physical resource
It is high.
Brief description of the drawings
In order to illustrate the technical solution of the embodiments of the present invention more clearly, being used required in being described below to embodiment
Accompanying drawing be briefly described, it should be apparent that, drawings in the following description are only some embodiments of the present invention, for this
For the those of ordinary skill in field, on the premise of not paying creative work, other can also be obtained according to these accompanying drawings
Accompanying drawing.
Fig. 1 is a kind of unrelated software defined network virtual management platform of supported protocol provided in an embodiment of the present invention
Schematic diagram;
Fig. 2 is global flowchart scheme schematic diagram provided in an embodiment of the present invention;
Fig. 3 is the handshake procedure figure of physical network management module provided in an embodiment of the present invention and physical switches;
Fig. 4 is the global behavior flow chart of Topology Discovery component provided in an embodiment of the present invention;
Fig. 5 is the flow chart that Topology Discovery component provided in an embodiment of the present invention handles LLDP;
Fig. 6 is the flow chart that virtual network provided in an embodiment of the present invention is initialized;
Fig. 7 is the flow chart that virtual network topology provided in an embodiment of the present invention is found;
Fig. 8 is the physical topology figure in experiment one provided in an embodiment of the present invention;
Fig. 9 is the virtual network VN1 created in experiment one provided in an embodiment of the present invention schematic diagram;
Figure 10 is the virtual network VN2 created in experiment one provided in an embodiment of the present invention schematic diagram;
Figure 11 is the virtual topology figure provided in an embodiment of the present invention for testing virtual network VN1 and VN2 in one;
Figure 12 is packet capturing result at end host h3 in experiment one provided in an embodiment of the present invention;
Figure 13 is packet capturing result at end host h4 in experiment one provided in an embodiment of the present invention;
Figure 14 is the physical topology figure in experiment two provided in an embodiment of the present invention;
Figure 15 is the physical link actual bandwidth schematic diagram in experiment two provided in an embodiment of the present invention;
Figure 16 is the virtual network VN1 created in experiment two provided in an embodiment of the present invention schematic diagram;
Figure 17 is the schematic diagram provided in an embodiment of the present invention for testing virtual link actual bandwidth in two;
Figure 18 is physical link actual bandwidth in experiment two provided in an embodiment of the present invention and virtual link actual bandwidth
Contrast schematic diagram.
Embodiment
With reference to the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Ground is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.Based on this
The embodiment of invention, the every other implementation that those of ordinary skill in the art are obtained under the premise of creative work is not made
Example, belongs to protection scope of the present invention.
The embodiment of the present invention realizes network virtualization using SDN, can make full use of the advantage of SDN and network virtualization.
With reference to the advantage of POF technologies, one kind is realized between control plane and Forwarding plane, supports the software of heterogeneous network section to determine
Adopted network virtualization management platform:POFVisor.POFVisor supports different tenants to create and manage on same physical resource
Multiple virtual networks, each virtual network can flexibly self-defined topology, and each virtual network can make according to demand
Use custom protocol.
POFVisor provided in an embodiment of the present invention between control plane and Forwarding plane, i.e. POFVisor equivalent to
The effect of Transparent Proxy.Therefore, the flow between the mapping of virtual network and physical network, virtual network is isolated and global
Flowchart scheme is the emphasis for realizing POFVisor.
1) mapping of virtual network and physical network.
In the embodiment of the present invention, virtual network and Physical Network can be realized by using global map and Message Agent structure
The mapping of network.First, it can be realized in the various assemblies in virtual network and the physical network of bottom using global map structure
Various assemblies mapping.Secondly, controller is handed down to physical switches or physical switches report the message of controller
It can realize that message is rewritten by Message Agent structure, and be sent to corresponding controller or physical switches.
2) the flow isolation between virtual network.
Realize that POFVisor another key point is to ensure that flow isolation between virtual network.Flow isolation ensures void
Intend isolating between network, will not be to impacting each other.POFVisor passes through to the packet belonged in different virtual networks
The mode of the label related to virtual network is stamped to distinguish packet, thus realize network between different virtual networks every
From.By the way of traditional VLAN, MPLS etc. label these fields will be caused occupied, tenant can not use these words
Section.Because POF supports to add field in the optional position of packet.Therefore, by adding virtual on the head of legacy data bag
Label, the virtual network belonging to identification data packet, so that it is guaranteed that the flow isolation between virtual network.The virtual label such as institute of table 1
Show, the top N of virtual label is a POFVisorTag, it is the other network traffics of difference that it, which is acted on,;Middle N positions are
TenantID, its effect is the virtual network belonging to mark;Last N positions are LinkID, where the transmission of its identification data packet
Virtual link.As an example, N herein can be 16.
The virtual label of table 1
3) global flowchart scheme.
Heterogeneous network virtualization is supported to require that each virtual network can be made by oneself to the packet in virtual network according to it
Adopted agreement is handled, and so may result in flow table that each virtual network issues may be entirely different.Therefore, each is merged empty
The flow table for intending network is substantially impossible.Accordingly, it would be desirable to rational global flowchart scheme be taken, so that packet is imported into its correspondence
The flow table that issues of virtual network handled.Global flowchart scheme is as shown in Fig. 2 the flow table in POFVisor distinguishes two
Class:One class is the virtual network flow table that tenant issues, and the rule defined by tenant is constituted;Another kind of is branch's flow table, is used for
Packet is imported into some virtual network.It is made up of two parts, and a part is border flow table item, and another part is virtual flow table
.Border flow table item is used for the main frame flow for recognizing respective virtual network, and main frame is recognized by MAC Address, so boundary current
List item matches the entry port of source MAC and packet.Virtual flow table item distinguishes the flow in virtual network, matched data bag
In virtual network label and packet entry port.After packet enters interchanger, match first in branch's flow table
Border flow table item, if illustrating that the packet comes from the main frame in some virtual network in matching, passes through instruction after matching
Jump in the flow table that respective virtual network is issued.If in matching not, then matching the virtual flow table item in branch's flow table,
If in matching, the packet belongs to some virtual network.The virtual label of data packet header is removed, and jumps to phase
Answer and handled in the virtual network flow table that virtual network issues.
Involved virtual label in flow isolation between above-mentioned virtual network, and involved by global flowchart scheme
Various flow tables by Message Agent module realize;Elaborated when will specifically introduce Message Agent module later.
In order to make it easy to understand, introducing POFVisor from the angle implemented below;As shown in figure 1, it mainly includes:
Physical network management module, API module, virtual network management module, global map module, Message Agent module and daily record mould
Block.
It will be understood by those skilled in the art that amount controller, virtual network quantity, physical switches quantity in Fig. 1,
And the POF interchanger entity object quantity safeguarded of physical network management module is only for example and is not construed as limiting.
It is described in detail below for modules.
1st, physical network management module.
Physical network management module is responsible for whole physical network resource.It is responsible for the change in resources for monitoring physical network
And record change in resources.It is that the physical switches of each bottom safeguard an entity object to be specifically included in POFVisor,
The entity object is responsible for safeguarding to be connected with the TCP of the physical switches of bottom, completes basic handshake procedure.
The handshake procedure of physical network management module and physical switches is as shown in Figure 3.In handshake phase, physical switches
Check whether the corresponding protocol version of both sides is identical by Hello message between physical network management module;Afterwards, Physical Network
Network management module issues Feature_request message to ask the essential information of physical switches to physical switches, including
Device numbering, port number, the state of flow table number and respective resources;Physical switches pass through Feature_reply message
Respond the request of physical network management module;Physical network management module is obtained after the essential information of physical switches, is passed through
Send the specifying information that Set_config message obtains respective resources;Physical switches receive the request of physical network management module
Afterwards, send corresponding message and respond physical network management module;After the information of complete physical switches is obtained, physics
By sending Echo message to keep in touch between network management module and physical switches.In addition, in the process, Physical Network
Network management module issues the affluent-dividing for packet to be imported to corresponding virtual network flow table for the physical switches of bottom
Table.
Topology Discovery in physical network management module is responsible for finding and safeguards the connection shape between bottom physical switches
State.The physical switches of bottom are completed with physical network management module after handshake procedure, are the thing of each bottom in platform
Reason interchanger is all safeguarded in an entity object, the entity object comprising a Topology Discovery component, is connect with handling from network
Receive Link Layer Discovery Protocol data cell (Link Layer Discovery Protocol Date Unit, hereinafter referred to as
LLDPDU LLDPDU) or into network is sent.
Fig. 4 illustrates the global behavior of Topology Discovery component.Physical network management module is by the end of bottom physical switches
Mouth is divided into two types, and one kind is quick port, that is, is properly received LLDPDU port;It is another for port at a slow speed, that is, send
The maximum number of LLDPDU and not confirmed port, that is to say, that port connection be main frame or port is not chain
The part on road.Topology Discovery component will allow at regular intervals bottom physical switches on all of the port perform as scheme
Flow shown in 3.When the physical switches of bottom receive LLDPDU, pass through PacketIn information reportings, physical network pipe
Reason module calls the corresponding Topology Discovery component processing LLDPDU of the bottom physical switches.Recorded according in PacketIn message
Information and LLDPDU in the relevant information that records, realize Topology Discovery, specific flow is as shown in Figure 5.
2nd, API module.
The API module provides the complete virtual network topology of establishment and monitoring virtual network configuration and status information
API.
Two kinds of API defined in API module:Cut into slices API and monitoring API;Wherein, section API be used for create and
Virtual network is configured, monitoring API is used to obtain virtual network configuration and status information;Specific section API's and monitoring API
Function is as shown in table 2 and table 3.
The section API functions of table 2
Table 3 monitors API functions
3rd, virtual network management module.
The virtual network management module, for realizing the establishment of virtual network according to calling for API module, configuring and first
Beginningization;Specifically include:
After the request to create that tenant issues is received, calling through API module creates corresponding virtual network;
In the configuration process of virtual network, virtual network management module is each virtual component in virtual network, wound
Build virtual component entity and map that on the physical entity of bottom, mapping relations are stored in global map;Described void
Intending component includes:Virtual switch, virtual port and virtual link;
In the initialization procedure of virtual network, virtual network management module allows virtual component to reach active state successively,
So as to start virtual network, the initialization procedure of virtual network is as shown in Figure 6.
After virtual network initialization, the virtual switch entity analog physical interchanger created in configuration process and control
Device processed completes basic handshake procedure and keeps TCP to connect, and allows controller to think in connection corresponding physical switches.Base
This handshake procedure is similar with the handshake procedure of physical network management module and physical switches.
The Topology Discovery of virtual network management module is responsible for presenting the topology of virtual network.For each virtual network,
POFVisor simulates LLDPDU broadcast, the process received in virtual network.When receiving from including that controller is sent
LLDPDU PacketOut, POFVisor select the corresponding virtual network of controller to handle LLDPDU.The idiographic flow of processing
As shown in Figure 7.In the embodiment of the present invention, by handling LLDPDU in virtual network, significantly it can reduce in physical network
LLDPDU quantity.
4th, global map module.
Global map module is used for map information, virtual port and the physics end of storage virtualization switch and physical switches
Mouthful map information, and virtual link and physical link map information.
In the embodiment of the present invention, because Message Agent module had both needed to search physical assemblies by virtual component, it is also desirable to
Virtual component is searched by physical assemblies, therefore whole map information is two-way storage.In addition, global map information is by more
Individual thread is shared, and each thread may carry out additions and deletions to it and change to look into.Accordingly, it would be desirable to be synchronized to global map information.
5th, Message Agent module.
In SDN, interchanger is entered by controller centralized Control between controller and interchanger by specific protocol message
Row communication.Therefore, the most important function of the virtual platform between control plane and Forwarding plane is to realize message
Proxy module.
In the embodiment of the present invention, the major function of Message Agent module is to intercept disappearing between controller and physical switches
Breath, issues the operation of physical switches including controller and query statement reports the state of controller with physical switches
And event information, with reference to global map module, so as to be modified to POF message.
Up to the present, POF defines 33 message altogether.Most important of which message is that TableMod and FlowMod disappears
Breath.TableMod message is used to generate flow table, and FlowMod is used to generate flow table item.Except TableMod and FlowMod message it
Outside, controller is used to directly transmit the PacketOut message of packet, physical switches when running into the packet that can not be handled
The PacketIn message of upload, and the PortMod message of modification port status are also more important.In addition to message, POF is also
Define 12 kinds of instructions (Instruction) for being used to operate between table;Define dynamic for what is operated in current flow table in 11
Make (Action).In addition to the message of handshake phase, Message Agent module needs to remaining all message, instruction and moved
Rewrite.TableMod, FlowMod, PortMod, PacketIn, PacketOutt rewriting will be introduced respectively below.
1) TableMod message.
POF supports to distinguish by table type (TableType), table numbering (TableID) between multilist, different flow tables.
If do not rewritten to TableMod message, then when different virtual networks is issued with identical TableType and TableID
TableMod message when, it will produce mistake.Accordingly, it would be desirable to rewrite TableMod message:It is according to TableType
TableMod redistributes new TableID, and corresponding relation is stored in global map module;In addition, working as TableMod
When the TableType included in message is mask matches table (OF_MM_TABLE), platform is that the table issues an acquiescence
PacketIn flow table item, it is therefore an objective to when other flow table items are mismatched in packet and the table, match this list item, will disappear
Breath reports controller.
2) FlowMod message.
The rewriting of FlowMod message is similar with TableMod, according to the information in global map module, for being wrapped in message
The TableID contained and CounterID is rewritten, and the instruction and action that contain to FlowMod message packages are changed accordingly;
Rewrite these instructions and action only needs to call the rewriting operation of these instructions and action.
3) PortMod message.
PortMod message by set openflowenable field order virtual network switch port whether start by
According to POF mode treatment packets;The PortMod message issued for controller, is rewritten into the list item in branch's flow table:Root
Then it is border flow table item by PortMod message transformations if boundary port according to the type of the corresponding port of PortMod message,
The MAC Address of border flow table item matching main frame and the port numbers of corresponding physical port, are then redirected by GotoTable instructions
Into correspondence virtual network flow table;It is virtual flow table by PortMod message transformations if the type of port is link port
, then the port numbers of virtual flow table item matching virtual label and correspondence physical port remove the virtual label of data packet header,
And jumped to by GotoTable instructions in correspondence virtual network flow table.In addition, PortMod message is jumped to by branch's flow table
, it is necessary to the port numbers that the packet of storage enters in changing metadata (MetaData) before virtual network flow table.
4) PacketIn message
PacketIn message is the flow table item in packet is not matched, or the PacketIn included in execution flow table item is moved
When making, physical switches will be sent to controller be used for report one need controller processing packet information;For
The rewriting of PacketIn message needs to distinguish different scenes:When PacketIn message comes from branch's flow table, then platform to point
Flow table item is issued in Zhi Liubiao.Wherein, during the occurrence of flow table item is the entry port of source MAC and packet, flow table item
Act as Drop;When PacketIn message comes from virtual network flow table, then being needed when reporting PacketIn message will correspondence
Physical port be rewritten into virtual port;
5) PacketOut message
The effect of PacketOut message, which is that controller control physical switches are corresponding to packet execution, to be acted and forwards
Packet, corresponding action is stored in actionlist;The rewriting of PacketOut message is only needed in modification actionlist
Everything, that is, call the rewriting operation of respective action.
6th, log pattern.
Log pattern participates in each period of POFVisor operations, for recording the data during POFVisor is run, with
And the printing log information related to POFVisor operations;For example, related error information, in order to more comprehensively understand
Running statuses of the POFVisor at each time point.
It is above POFVisor provided in an embodiment of the present invention whole compositions and function, it supports different tenants same
Multiple virtual networks are created and managed on physical resource, and each virtual network can flexibly self-defined topology, and each empty
Custom protocol can be used according to demand by intending network, so as to give full play to SDN programmability;Meanwhile, virtual network it
Between isolate flow by adding tagged mode;By introducing branch's flow table and virtual network flow table, global planning is carried out, is made
Packet handling rate is obtained to greatly improve.In addition, POFVisor introducing will not be impacted to original performance, to physical resource
Utilization rate it is high.
It is described in detail again for POFVisor running below.POFVisor running is divided into four ranks
Section, respectively virtual platform initial phase, virtual network establishing stage, virtual network operation phase and virtual network pin
Ruin the stage.
In initial phase, modules initialization.Physical network management module first listens to 6633 ports.Physical network
TCP connections are set up between the interchanger entity object and the physical switches of bottom safeguarded in management module, and according to POF associations
Discuss stack and keep communication.After basic handshake phase is completed, physical switches entity object can be sent out by TableMod message
Send branch's flow table for virtualization.Interchanger entity object is by controlling all of the port of correspondence physical switches periodically to send
LLDPDU packets realize Topology Discovery.After complete bottom physical topology is found, the initial phase of virtual platform is complete
Into.
In virtual network establishing stage, API module receives and handled the virtual network request to create for coming from tenant.Tenant
API can be used to create complete virtual network topology.As tenant far call createNetwork, virtual network management
The corresponding virtual network entity of module creation.As tenant far call createSwitch, virtual network management module is right
Virtual switch is added in the virtual network answered, and the mapping relations of virtual switch and physical switches are stored in the overall situation and is reflected
Penetrate in module.As tenant far call createPort, virtual network management module is that the virtual switch addition specified is empty
Intend port, and the mapping relations of virtual port and physical port are stored in global map module.When tenant calls
During connectLink, virtual network management module sets up virtual link between two specified virtual ports, and is opened up in physics
Flutter and calculate a shortest path for the virtual link, be then stored in the mapping relations of virtual link and this shortest path
In global map module.When tenant calls connectHost, the virtual network management module virtual switch specified of connection with
End host, and in virtual network record end host MAC Address.Tenant create complete virtual network topology it
Afterwards, virtual network establishing stage is completed.
In the virtual network operation phase, tenant calls startNetwork to start whole virtual network.According to virtual network
The map information of establishing stage storage, virtual network management module completes the initial chemical industry of all virtual links on physical network
Make, i.e., by issuing FlowMod message, generated in branch's flow table of physical switches for guiding the virtual network flow
Flow table item.Then, connection is set up between virtual network management module virtual switch all in virtual network and controller,
Complete basic POF protocol stacks handshake phase and issue the rule that controller is specified, such as TableMod, FlowMod.This time control
All POF message of device and bottom physical switches processed can all be rewritten by Message Agent module.
Destroyed the stage in virtual network, tenant calls removeNetwork to destroy whole virtual network.First, virtual net
Network management module disconnects the connection between controller.Then, the information in global map module, virtual network management mould
Block deletes the flow table item for being used in branch's flow table guiding the virtual network flow, so as to forbid the packet of whole virtual network
Into network, all flow tables that tenant issues then are deleted.At the same time, global map module is deleted and reclaimed and the virtual net
The relevant all resource informations of network, to reuse.Virtual network is being deleted and reclaimed in virtual platform and physical network
In all resource informations after, virtual network destroy the stage complete.
On the other hand, in order to illustrate characteristic that POFVisor provided in an embodiment of the present invention possesses, with reference to two
Experiment is illustrated.
Experiment one
POFVisor proposed by the present invention maximum characteristic is to support heterogeneous network section virtualization.Therefore, Binding experiment
One verifies that POFVisor supports the characteristic.
The physical topology of experiment as shown in figure 8, have two physical switches (S1, S2) and four station terminal main frames (h1~
h4).Start POFVisor, POFVisor has found the physical topology of bottom by physical network management module, and API module is monitored
The call request of tenant.As shown in Figure 9 and Figure 10, tenant is by calling API request to create virtual network VN1 and VN2, virtual net
Network VN1 and VN2 virtual topology are as shown in figure 11.Wherein, the agreement run in virtual network VN1 is IPV4, virtual network VN2
The agreement of middle operation is IPV6.Specific flow table and flow table item are issued by controller 1 with controller 2, via POFVisor's
Message Agent module is rewritten, and is issued in the physical switches of bottom.Now, by ostinato in end host h1 and terminal
Main frame h3 corresponding ports construct and send corresponding packet, are grabbed in end host h2 and end host h4 by wireshark
Bag is taken, as a result as shown in Figure 12 and Figure 13.From the results, it was seen that end host h1 hairs can only be captured in end host h3 packet capturings
The packet gone out, packet capturing can only grab the packet that end host h2 is sent at end host h4.Therefore, virtual network
Each its custom protocol type of self-operating of VN1 and virtual network VN2 energy, and virtual network VN1 and virtual network VN2 flow
Isolation.
Experiment two
POFVisor proposed by the present invention is high to the utilization rate of physical resource, in order to illustrate that the characteristic has equally carried out correlation
Experiment.
The physical topology of experiment is as shown at 14:Have two physical switches (s1, s2) and two station terminal main frames (h1,
H2), by the direct-connected controller of physical switches, and the reality between physical switches s1 and physical switches s2 is measured with iperf
Bandwidth, as a result as shown in figure 15.
The POFVisor of the invention provided is provided and constructs virtual network VN1 as shown in figure 16, and measures empty with iperf
Intend the actual bandwidth of the virtual link in network VN1, as a result as shown in figure 17.
The result obtained according to Figure 15 and Figure 17 measurements, can calculate the actual a width of 856.4Mb/ of band of physical link
S, the actual a width of 821Mb/s of band of virtual link.Therefore the bandwidth utilization rate of virtual link is 95.8%, and concrete outcome can be found in
Figure 18, illustrates the characteristic high to the utilization rate of physical resource.
It is apparent to those skilled in the art that, for convenience and simplicity of description, only with above-mentioned each function
The division progress of module is for example, in practical application, as needed can distribute above-mentioned functions by different function moulds
Block is completed, i.e., the internal structure of system is divided into different functional modules, to complete all or part of work(described above
Energy.
The foregoing is only a preferred embodiment of the present invention, but protection scope of the present invention be not limited thereto,
Any one skilled in the art is in the technical scope of present disclosure, the change or replacement that can be readily occurred in,
It should all be included within the scope of the present invention.Therefore, protection scope of the present invention should be with the protection model of claims
Enclose and be defined.
Claims (9)
1. a kind of unrelated software defined network virtual management platform of supported protocol, it is characterised in that including:Physical network pipe
Manage module, API module, virtual network management module, global map module and Message Agent module;Wherein:
Physical network management module, is responsible for the physical network resource of whole platform, is completed with the physical switches of bottom
After basic handshake procedure, it is that the physical switches of each bottom safeguard an entity object, Mei Yishi in platform
Body object is responsible for safeguarding the TCP connections between the respective physical interchanger of bottom;
API module, complete virtual network topology and monitoring virtual network configuration and status information are created for providing
API;
Virtual network management module, for calling the establishment for realizing virtual network, configuration and initialization according to API module,
After virtual network initialization, it is responsible for completing virtual switch and the basic handshake procedure of controller, and set up TCP therebetween
Connection;
Global map module, for storage virtualization switch and the map information of physical switches, virtual port and physical port
Map information, and virtual link and physical link map information;
Message Agent module, for intercepting the message between controller and physical switches, with reference to the information of global map module
Message is rewritten.
2. a kind of unrelated software defined network virtual management platform of supported protocol according to claim 1, its feature
It is, the physical network management module and physical switches handshake procedure are as follows:
First, the corresponding protocol version of both sides is checked by Hello message between physical switches and physical network management module
It is whether identical;
Then, physical network management module issues Feature_request message to ask physical switches to physical switches
Essential information, including device numbering, port number, the state of flow table number and respective resources;Physical switches pass through
Feature_reply message responds the request of physical network management module;
Physical network management module is obtained after the essential information of physical switches, and phase is obtained by sending Set_config message
Answer the specifying information of resource;Physical switches are received after the request of physical network management module, are sent corresponding message and are responded
Physical network management module;
After the information of complete physical switches is obtained, by sending between physical network management module and physical switches
Echo message is to keep in touch.
3. a kind of unrelated software defined network virtual management platform of supported protocol according to claim 1, its feature
It is, comprising a Topology Discovery component in each entity object, to send LLDPDU into network or handle from network
The LLDPDU received;
The port of physical switches is divided into two types, and one kind is quick port, that is, is properly received LLDPDU port;It is another
For port at a slow speed, that is, it have sent the port of the maximum number of LLDPDU and not confirmed;
When physical switches receive LLDPDU, physical network management module, Physical Network are given by PacketIn information reportings
Network management module calls the Topology Discovery component in the corresponding entity object of respective physical interchanger to handle LLDPDU;According to
The relevant information recorded in the information and LLDPDU that are recorded in PacketIn message, realizes Topology Discovery.
4. a kind of unrelated software defined network virtual management platform of supported protocol according to claim 1, its feature
It is, two kinds of API defined in the API module:Cut into slices API and monitoring API;Wherein, section API be used for create and
Virtual network is configured, monitoring API is used to obtain virtual network configuration and status information.
5. a kind of unrelated software defined network virtual management platform of supported protocol according to claim 1, its feature
It is, the virtual network management module, for realizing the establishment of virtual network according to calling for API module, configuring and initial
Change, specifically include:
After the request to create that tenant issues is received, calling through API module creates corresponding virtual network;
In the configuration process of virtual network, virtual network management module is that each virtual component in virtual network creates virtual
Component entities simultaneously map that to the physical assemblies of bottom physically, and mapping relations are stored in global map module;Described
Virtual component includes:Virtual switch, virtual port and virtual link;
In the initialization procedure of virtual network, virtual network management module allows virtual component to reach active state successively, so that
Start virtual network.
6. the unrelated software defined network virtual management platform of a kind of supported protocol according to claim 1 or 5, it is special
Levy and be, the Topology Discovery of virtual network management module is responsible for presenting the topology of virtual network;For each virtual network,
Simulate LLDPDU broadcast and the process received in network.
7. a kind of unrelated software defined network virtual management platform of supported protocol according to claim 1, its feature
It is, the flowchart scheme of flow isolation and the overall situation between virtual network is realized by Message Agent module;It is specific as follows:
Flow isolation between virtual network:Add virtual label to identify in corresponding data packet header by Message Agent module
Virtual network belonging to packet, so as to realize the flow isolation between different virtual networks;The top N of virtual label is one
POFVisorTag, for distinguishing other network traffics;Middle N positions are TenantID, and its effect is the virtual net belonging to mark
Network;Last N positions are LinkID, the virtual link where the transmission of its identification data packet;
Global flowchart scheme:By the way that the entrance flow table of processing data packets is set to branch's flow table, and then difference will be belonged to
The packet of virtual network is imported in corresponding virtual network flow table and handled;Branch's flow table is made up of two parts, and a part is side
Boundary's flow table item, the main frame flow for recognizing respective virtual network, because main frame is recognized by MAC Address, therefore border flow table
The entry port of item matching source MAC and packet;Another part is virtual flow table item, for distinguishing the stream in virtual network
The entry port of virtual label and packet in amount, the list item matched data bag;It is first after packet enters physical switches
Border flow table item in first matching branch flow table, if illustrating that the packet comes from the main frame in virtual network in matching,
Jumped to after matching by instruction in respective virtual network flow table;If in not matching, matching the virtual stream in branch's flow table
List item, if in matching, the packet belongs to some virtual network, and the virtual label of data packet header is removed, then jumped
Go in respective virtual network flow table and handled.
8. a kind of unrelated software defined network virtual management platform of supported protocol according to claim 1 or 7, it is special
Levy and be, the mode that the Message Agent module is rewritten to message is as follows:
TableMod message, for generating flow table;Modification mode is as follows:It is that TableMod is redistributed newly according to TableType
TableID, and corresponding relation is stored in global map module;In addition, when including in TableMod message
When TableType is OF_MM_TABLE, platform is the flow table item for the PacketIn that the table issues an acquiescence;
FlowMod message, for generating flow table item;Modification mode is as follows:According to the information in global map module, in message
Comprising TableID and CounterID rewritten, in addition it is also necessary to enter to the instruction and action included in FlowMod message
The corresponding modification of row;
The effect of PortMod message be setting openflowenable field order virtual network switch port whether start by
According to POF mode treatment packets;The PortMod message issued for controller, is rewritten into the list item in branch's flow table:Root
Then it is border flow table item by PortMod message transformations if boundary port according to the type of the corresponding port of PortMod message,
The MAC Address of border flow table item matching main frame and the port numbers of corresponding physical port, are then redirected by GotoTable instructions
Into correspondence virtual network flow table;It is virtual flow table by PortMod message transformations if the type of port is link port
, then the port numbers of virtual flow table item matching virtual label and correspondence physical port remove the virtual label of data packet header,
And jumped to by GotoTable instructions in correspondence virtual network flow table;
PacketIn message is the flow table item in packet is not matched, or performs the PacketIn actions included in flow table item
When, physical switches be sent to controller be used for report one need controller processing packet information;For PacketIn
The rewriting of message needs to distinguish different scenes:When PacketIn message comes from branch's flow table, then platform is into branch's flow table
Issue flow table item.Wherein, the occurrence of flow table item is that the action in the entry port of source MAC and packet, flow table item is
Drop;When PacketIn message carrys out virtual network flow table, then needed corresponding physics end when reporting PacketIn message
Mouth is rewritten into virtual port;
The effect of PacketOut message, which is that controller control physical switches are corresponding to packet execution, to be acted and forwards data
Bag, corresponding action is stored in actionlist;The rewriting of PacketOut message needs to change all in actionlist
Action, by calling the rewriting operation of respective action to complete.
9. a kind of unrelated software defined network virtual management platform of supported protocol according to claim 1, its feature
It is, in addition to:Log pattern, for the data during recording platform operation, and the printing daily record related to platform operations
Information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710562210.3A CN107222353B (en) | 2017-07-11 | 2017-07-11 | The unrelated software defined network virtual management platform of supported protocol |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710562210.3A CN107222353B (en) | 2017-07-11 | 2017-07-11 | The unrelated software defined network virtual management platform of supported protocol |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107222353A true CN107222353A (en) | 2017-09-29 |
| CN107222353B CN107222353B (en) | 2019-11-22 |
Family
ID=59952580
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710562210.3A Active CN107222353B (en) | 2017-07-11 | 2017-07-11 | The unrelated software defined network virtual management platform of supported protocol |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107222353B (en) |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107528743A (en) * | 2017-10-25 | 2017-12-29 | 中国科学技术大学 | A kind of distributed network virtualization system of SDN |
| CN107645450A (en) * | 2017-10-11 | 2018-01-30 | 中国科学技术大学 | Flow table virtualization apparatus and method based on agreement unaware retransmission technique |
| CN107749802A (en) * | 2017-10-12 | 2018-03-02 | 北京邮电大学 | A kind of experiment porch and experimental method of the processing of supported protocol extraneous data bag |
| CN108337168A (en) * | 2018-02-11 | 2018-07-27 | 天津大学 | It flows cluster and exchanges routing mechanism OpenFlow group table selection methods |
| CN109547288A (en) * | 2018-11-29 | 2019-03-29 | 中国科学院信息工程研究所 | A kind of unrelated forwarding Network Programmable flow measuring method of agreement |
| CN109802852A (en) * | 2018-12-13 | 2019-05-24 | 烽台科技(北京)有限公司 | The construction method and system of network simulation topology applied to network target range |
| CN109873767A (en) * | 2019-03-29 | 2019-06-11 | 中山大学 | Incorporate network virtualization method based on the forwarding of agreement unaware |
| CN111211977A (en) * | 2019-12-12 | 2020-05-29 | 鹏城实验室 | Ship communication method and system supporting external multi-heterogeneous channel connection |
| CN112311582A (en) * | 2019-07-23 | 2021-02-02 | 瞻博网络公司 | Verifying user-defined wiring plans for computer networks based on physical wiring topology |
| CN112543108A (en) * | 2019-09-04 | 2021-03-23 | 中兴通讯股份有限公司 | Network isolation policy management method and network isolation policy management system |
| CN113285838A (en) * | 2021-05-28 | 2021-08-20 | 之江实验室 | Heterogeneous identification network model and data packet based on POF and method for managing heterogeneous identification network |
| CN113853776A (en) * | 2019-06-04 | 2021-12-28 | 思科技术公司 | Application-centric execution of multi-tenant workloads with multi-site datacenter structure |
| CN114221859A (en) * | 2022-01-06 | 2022-03-22 | 烽火通信科技股份有限公司 | Method and system for generating tenant network physical link connectivity topology |
| CN114928526A (en) * | 2022-02-09 | 2022-08-19 | 北京邮电大学 | Network isolation and resource planning method and system based on SDN |
| CN114978911A (en) * | 2022-05-20 | 2022-08-30 | 中国联合网络通信集团有限公司 | Correlation method of network slices, equipment main body, communication module and terminal equipment |
| CN115834293A (en) * | 2022-11-17 | 2023-03-21 | 中国联合网络通信集团有限公司 | Method for constructing building private network and building private network |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111125493B (en) * | 2019-12-19 | 2021-11-26 | 中国科学院信息工程研究所 | High-speed data query system and method based on protocol non-perception forwarding |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105391690A (en) * | 2015-10-19 | 2016-03-09 | 中国科学院信息工程研究所 | POF-based network eavesdropping defending method and system |
| US20160226758A1 (en) * | 2015-01-30 | 2016-08-04 | Huawei Technologies Co., Ltd. | Node, network controller, and associated methods for routing data packets in a network |
| CN105959154A (en) * | 2016-06-22 | 2016-09-21 | 中国科学技术大学 | Programming tool-based protocol-independent network forwarding management method |
| CN106059921A (en) * | 2016-05-06 | 2016-10-26 | 中国科学技术大学 | Content routing system of network layer based on software defined networking (SDN) technology and content-centric networking (CCN) frame and working mode thereof |
| CN107204919A (en) * | 2017-07-06 | 2017-09-26 | 中国科学技术大学 | A kind of edge through street based on POF by with caching system and method |
-
2017
- 2017-07-11 CN CN201710562210.3A patent/CN107222353B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160226758A1 (en) * | 2015-01-30 | 2016-08-04 | Huawei Technologies Co., Ltd. | Node, network controller, and associated methods for routing data packets in a network |
| CN105391690A (en) * | 2015-10-19 | 2016-03-09 | 中国科学院信息工程研究所 | POF-based network eavesdropping defending method and system |
| CN106059921A (en) * | 2016-05-06 | 2016-10-26 | 中国科学技术大学 | Content routing system of network layer based on software defined networking (SDN) technology and content-centric networking (CCN) frame and working mode thereof |
| CN105959154A (en) * | 2016-06-22 | 2016-09-21 | 中国科学技术大学 | Programming tool-based protocol-independent network forwarding management method |
| CN107204919A (en) * | 2017-07-06 | 2017-09-26 | 中国科学技术大学 | A kind of edge through street based on POF by with caching system and method |
Non-Patent Citations (1)
| Title |
|---|
| 邹山,田野: "面向协议无感知转发技术的SDN试验床", 《计算机系统应用》 * |
Cited By (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107645450A (en) * | 2017-10-11 | 2018-01-30 | 中国科学技术大学 | Flow table virtualization apparatus and method based on agreement unaware retransmission technique |
| CN107645450B (en) * | 2017-10-11 | 2019-10-25 | 中国科学技术大学 | Flow table virtualization apparatus and method based on agreement unaware retransmission technique |
| CN107749802A (en) * | 2017-10-12 | 2018-03-02 | 北京邮电大学 | A kind of experiment porch and experimental method of the processing of supported protocol extraneous data bag |
| CN107749802B (en) * | 2017-10-12 | 2020-07-03 | 北京邮电大学 | Experiment platform and experiment method supporting protocol-independent data packet processing |
| CN107528743B (en) * | 2017-10-25 | 2019-10-25 | 中国科学技术大学 | A kind of distributed network virtualization system of SDN network |
| CN107528743A (en) * | 2017-10-25 | 2017-12-29 | 中国科学技术大学 | A kind of distributed network virtualization system of SDN |
| CN108337168B (en) * | 2018-02-11 | 2021-01-05 | 天津大学 | OpenFlow group table selection method of flow cluster exchange routing mechanism |
| CN108337168A (en) * | 2018-02-11 | 2018-07-27 | 天津大学 | It flows cluster and exchanges routing mechanism OpenFlow group table selection methods |
| CN109547288A (en) * | 2018-11-29 | 2019-03-29 | 中国科学院信息工程研究所 | A kind of unrelated forwarding Network Programmable flow measuring method of agreement |
| CN109802852A (en) * | 2018-12-13 | 2019-05-24 | 烽台科技(北京)有限公司 | The construction method and system of network simulation topology applied to network target range |
| CN109802852B (en) * | 2018-12-13 | 2022-06-17 | 烽台科技(北京)有限公司 | Method and system for constructing network simulation topology applied to network target range |
| CN109873767A (en) * | 2019-03-29 | 2019-06-11 | 中山大学 | Incorporate network virtualization method based on the forwarding of agreement unaware |
| CN113853776B (en) * | 2019-06-04 | 2023-10-20 | 思科技术公司 | Method, system and computer readable medium for network architecture |
| CN113853776A (en) * | 2019-06-04 | 2021-12-28 | 思科技术公司 | Application-centric execution of multi-tenant workloads with multi-site datacenter structure |
| CN112311582A (en) * | 2019-07-23 | 2021-02-02 | 瞻博网络公司 | Verifying user-defined wiring plans for computer networks based on physical wiring topology |
| CN112311582B (en) * | 2019-07-23 | 2023-08-08 | 瞻博网络公司 | Verifying user-defined routing plans for computer networks based on physical routing topology |
| CN112543108A (en) * | 2019-09-04 | 2021-03-23 | 中兴通讯股份有限公司 | Network isolation policy management method and network isolation policy management system |
| CN111211977A (en) * | 2019-12-12 | 2020-05-29 | 鹏城实验室 | Ship communication method and system supporting external multi-heterogeneous channel connection |
| CN113285838A (en) * | 2021-05-28 | 2021-08-20 | 之江实验室 | Heterogeneous identification network model and data packet based on POF and method for managing heterogeneous identification network |
| CN113285838B (en) * | 2021-05-28 | 2022-08-05 | 之江实验室 | Heterogeneous identification network model and data packet based on POF and method for managing heterogeneous identification network |
| CN114221859A (en) * | 2022-01-06 | 2022-03-22 | 烽火通信科技股份有限公司 | Method and system for generating tenant network physical link connectivity topology |
| CN114221859B (en) * | 2022-01-06 | 2023-12-01 | 烽火通信科技股份有限公司 | Tenant network physical link connectivity topology generation method and system |
| CN114928526A (en) * | 2022-02-09 | 2022-08-19 | 北京邮电大学 | Network isolation and resource planning method and system based on SDN |
| CN114928526B (en) * | 2022-02-09 | 2023-06-16 | 北京邮电大学 | SDN-based network isolation and resource planning method and system |
| CN114978911A (en) * | 2022-05-20 | 2022-08-30 | 中国联合网络通信集团有限公司 | Correlation method of network slices, equipment main body, communication module and terminal equipment |
| CN114978911B (en) * | 2022-05-20 | 2024-03-08 | 中国联合网络通信集团有限公司 | Correlation method of network slices, equipment main body, communication module and terminal equipment |
| CN115834293A (en) * | 2022-11-17 | 2023-03-21 | 中国联合网络通信集团有限公司 | Method for constructing building private network and building private network |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107222353B (en) | 2019-11-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107222353A (en) | The unrelated software defined network virtual management platform of supported protocol | |
| US11765085B2 (en) | Switch with network services packet processing by service software instances | |
| CN104253770B (en) | Realize the method and apparatus of the distributed virtual switch system | |
| CN105515978B (en) | Realize the method and device of distributed routing, physical host access | |
| CN104468358B (en) | The message forwarding method and equipment of the distributed virtual switch system | |
| CN105765946B (en) | Support the method and system of the service chaining in data network | |
| CN103930882B (en) | The network architecture with middleboxes | |
| CN105429870B (en) | VXLAN security gateway devices under SDN environment and its application process | |
| CN104717098B (en) | A kind of data processing method and device | |
| CN103997513B (en) | A kind of programmable virtual network service system | |
| CN104410541B (en) | The method and device that VXLAN internal layer virtual machine traffics are counted in intermediary switch | |
| CN104468462B (en) | The message forwarding method and equipment of the distributed virtual switch system | |
| CN110178342A (en) | The scalable application level of SDN network monitors | |
| CN104135446B (en) | System and methods of the IPv4 to IPv6 transition is realized based on SDN | |
| CN105915407A (en) | Flow generator virtualization realization system and flow generator virtualization realization method based on SDN | |
| CN107409066A (en) | For automatic detection and the system and method for configuration server uplink network interface | |
| CN111064649B (en) | Method and device for realizing binding of layered ports, control equipment and storage medium | |
| CN107566237A (en) | A kind of data message processing method and device | |
| CN103581274B (en) | Message forwarding method and device in stacking system | |
| CN108768714A (en) | A kind of data center's total management system and its network security implementation method | |
| CN106034052A (en) | System and method for monitoring two-layer traffic among virtual machines | |
| CN108599999A (en) | The network of OVS and Linux bridge is disposed in a kind of SDN new networks | |
| CN106330783B (en) | A kind of method and device of OpenFlow interchanger capability reporting | |
| CN105516116B (en) | A kind of system and method for converting protocol based on ForCES control piece control OpenFlow interchanger | |
| CN107809387A (en) | A kind of method of message transmissions, equipment and network system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |